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Amendments to the Claims 

This listing of claims will replace all prior versions and listings of claims in the application: 
Listing of claims; 

1-6. (Cancelled) 

7. (currently amended) A method of establishing communication between a first 
correspondent and a second correspondent, each of said correspondents having a 
respective identity, said first correspondent having a private key and a public key derived 
therefrom, said method comprising the steps of: 

a) said second correspondent obtaining said public key of said first 
correspondent; 

b) said second correspondent sending a short-lived public key and said second 
correspondent's identity to said first correspondent; 

c) said first correspondent combining its private key with said short-lived public 
key and generating a pair of secret keys therefrom; 

d) said first correspondent using a first of said pair of secret keys to compute a 
first MAC on its identity, said second correspondent's identity, a random 
challenge, and said short-lived public key, 

e) said first correspondent sending its identity, said random challenge, and said 
first MAC to said second correspondent, thereby requesting registration; 

f) said second correspondent using a short-lived private key corresponding to 
said short-lived public key and said first correspondent's public key to 
generate said pair of secret keys; 

g) oaid aecond correspondent verifying aaid first MAC using oaid first of aaid 
pair of secret key s- 

h) g) said second correspondent using said first of said pair of secret keys to 
compute a second MAC on its identity, said first correspondent's identity, said 
random challenge, and said short-lived public key; 
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h) said second corres pondent verifying said firstMAC usinp said first of s ^tf 
pair of secret keys; 

i) said second correspondent sending said second MAC to said first 
correspondent, thereby registering said first correspondent; 

j) said first correspondent verifying said second MAC using said first of said 
pair of secret keys; 

k) said correspondents each computing a pair of session keys from a second of 
said pair of secret keys, said short-lived public key, and said random 
challenge; and 

1) said correspondents using at least one of said session keys in a secure 
communication. 

8. (Original) A method according to claim 7, said first correspondent being a mobile station 
and said second correspondent being a base station. 

9. (Original) A method according to claim 8, said secure communication being a call 
originated by said mobile station. 

10. (Original) A method according to claim 8, said secure communication being a call 
terminating at said mobile station. 

1 1 . (Original) A method according to claim 8, said secure communication being a data 
exchange between said stations. 

12. (Original) A method according to claim 1 1, said data exchange being used for internet 
browsing. 

13. (Original) A method according to claim 1 1, said data exchange being used for financial 
transactions. 

14. (Original) A method according to claim 7, said second correspondent obtaining said 
public key from a service provider of said first correspondent. 

15. (Original) A method according to claim 14, said service provider obtaining said public 
key by a manual exchange at a distributor outlet. 

16. (Original) A method according to claim 15, said public key being transmitted to said 
service provider using a dial-up connection. ^ ^ f 
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17. (Original) A method according to claim 14, said service provider obtaining said public 
key by an exchange at manufacture time. 

18. (Original) A method according to claim 17, said exchange comprising the steps of a 
manufacturer retrieving said public key, and transmitting said public key to said service 
provider, 

19. (Original) A method according to claim 14, said service provider obtaining said public 
key by an over-the-air exchange. 

20. (Original) A method according to claim 19, said over-the-air exchange being secured 
using a password established between a user of said mobile station and said service 
provider. 

21. (Original) A method according to claim 19, said over-the-air-exchange being secured 
using a password embedded in said mobile station at manufacture time. 

22. (Original) A method according to claim 7, said second correspondent being a service 
provider of said first correspondent. 

23. (Previously presented) A method according to claim 7, the MACs computed in steps (d) 
and (h) each incorporating a value, said values being distinct from each other. 

24. (Original) A method according to claim 8, wherein the value used in said mobile station 
MAC is 2 and said base station MAC is 3. 

25. (Original) A method according to claim 7, said private keys, said public keys, and said 
MACs computed using elliptic curve cryptography. 

26. (Original) A method according to claim 8, said elliptic curve having a cofactor t, said 
short-lived public key being bP, said mobile station private key being m, and said pair of 
secret keys being generated from a shared secret tmbP. 

27. (Currently amended) A base station for use in a communication system having at least 
one mobile station, said base sta tion and each said at least one mobile station having a 
respective identity, each said at least one mobile statiees station having a s ecret key pair 
eomprioing a aeorot private key and a see** public key derived from said aeefet private 
key, acc e aa to aaid secret public key being restricted to a occurc environment including 
oaid baae otation, said base station initiating communications with a respective one of said 
mobile stations by: generating an ephemeral private key, obtaining thcrefrom -a 
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corresponding ophamnml pnhlic ifoy nnrf ff i rwmrrfinri ™iA «pfr? rrrcral public key to joid 
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authentication of flaid stationa to ono another. 

a) obtaining said public kev of said mobile station, computing a short-lived 
public key derived from a short-lived private kev and sending said short-lived 
public kev an d its identity to said mobile station; 

b) receiving from said mobile station a request for registration including said 
mobile station's identit y, a landom challenge and a first MAC, said first MAC 
computed on said ba se station's identity, said mobile station's identity, said 
random challenge a nd said short-lived public kev using a first of a pair of 
secret keys. said_pair of secret kevs bei ng generated bv said mobile station 
cjaibining its private kev wi th said short-lived public key provided bv said 
base station: 

c) using said short-lived private kev and said mobile station's public kev tp 
generate said pair of secret keys; 

d) using said first of said pair of secret kevs to compute a second MAC nn its 
identity, said mobile s tation's identity, said random challenge and said short- 
lived public kev: 

e) verifying said first MAC using said first of said pair of secret kevs- 

f) sending said second MAC to said mobile station to thereby r e gister said 
mobile station_and to enable said mobil e station to verify said second MAC 
using said first of said pair of secret kevs: and 

g) computing a session kev to sec ure communication with said mobile station hv 
Hsjng a second of said pair of secret kevs. said short-lived p u blic kev and said 
random challenge. 

58. (currently amended) A base station according to claim 27, wherein said base station 

obtains access to said seem public key from a service provider. 
19. (Original) A base station according to claim 27, wherein said base station is a service 

provider of said mobile station. 
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30. (Original) A base station according to claim 29, wherein said base station obtains said 
public key by a manual exchange at a distributor outlet. 

3 1 . (Original) A base station according to claim 29, wherein said base station receives said 
public key using a dial-up connection. 

32. (Original) A base station according to claim 29, wherein said base station obtains said 
public key by an exchange at manufacture time. 

33 . (Original) A base station according to claim 32, wherein said exchange comprises the 
manufacturer retrieving said public key, and transmitting said public key to said base 
station. 

34. (Original) A base station according to claim 32, wherein said base station obtains said 
public key by an over-the-air exchange. 

35. (Original) A base station according to claim 34, wherein said over-the-air exchange is 
secured using a password established between a user of said mobile station and said base \ 
station. 

36. (Original) A base station according to claim 34, wherein said over-the-air- exchange is 
secured using a password embedded in said mobile station at manufacture time. 

37. (currently amended) A base station according to claim 27, wherein said secret key pair, 
sa id e phemeral koy pair, and aaid authenticatio n public kev. said private kev. said short 
lived public kev. and sai d short lived private kev use elliptic curve cryptography. 

38. (Currently amended) A method of establishing communications between a base station 
and a mobile station, whoroin said mobile s tation has a oocrot koy pair comprising said 
base Station and said mobile station each h aving a respective identity, said mobile station : 
haying a secret private key and a $eefe* public key derived from said secret private key, 
said method comprising the base station performing the steps of: 

a) acoooaing - paid secret public koy of aaid mobile otation; 

b) generating an ephemeral secret key; - 

c) obtaining from said ephemeral secr e t key a corresponding ephemeral public 
seyy 

d) forwarding aaid ephemeral public koy [[bP]] to aaid mobile station; and 
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e) computing q oharod s ecret from oaid cphomoral key pair and oaid occrct key 
pair to permit authentication of said stations to one another. 

&) obtaining said public kev of s aid mobile station c omp uting a short-live d 
BHkUs k.SV derived from a short-lived private kev and sending said short-liy ^ 
public kev and its identit y to said m obile station; 

1?) receiving from said mobile stati o n a request for registration including said 
mobile station's identity, a ran dom challenge and a first MAC said first MAC. 
computed on said base station's ide ntity, said mobile station's identity, said 
rjnrfpjn challenge and said short-li ved public kev using a first of a pair of 
secret keys, said pair of secre t kevs being generated by said mobile station 
combining frs p rivate kev with said short-lived public kev p rovi ded bv said 
base station: 

c) using said short-lived private kev and said mobile staf j on's public kev to 
generate said pajr of secret kevs: 

d) using said first of s aid pair of secret kevs to compute a second MAC on its 
identity, said mobile station's ide ntity, said random challenge and said short- 
lived public key- 

ej_ verifying said first M AC using said first of said pair of secret kevs: 

f) sending said second MAC to sa i d mobile station to thereby register said 
mobile station and to enable s aid mobile station to verify said second MAC 
using said first nf said p air of secret keys ; 

g) compute session kev using a seco n d of said p air of secret kevs said short- 
lived public kev and sai d random challeng e; and 

hl Msjng , said session kev to secure comm u nication with said mobile station, 

39. (currently amended) A method according to claim 37, said base station accessing said 
«eefet public key by receiving said public key from a service provider. 

40. (Original) A method according to claim 3 7, said base station being a service provider of 
said mobile station. 

4 1 (Original) A method according to claim 39, said base station obtaining said public key 
by a manual exchange at a distributor outlet. 
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42. (Original) A method according to claim 39, said base station receiving said public key 
using a dial-up connection. 

43. (Original) A method according to claim 39, said base station obtaining said public key 
by an exchange at manufacture time. 

44. (Original) A method according to claim 42, said exchange comprising the manufacturer 
retrieving said public key, and transmitting said public key to said base station. 

45. (Original) A method according to claim 42, said base station obtaining said public key 
by an over-the-air exchange. 

46. (Original) A method according to claim 44, said over-the-air exchange being secured 
using a password established between a user of said mobile station and said base station. 

47. (Original) A method according to claim 44, said over-the-air-exchange being secured 
using a password embedded in said mobile station at manufacture tine. 

48. (Original) A method for authenticating a first correspondent and a second correspondent 
in a communication system, wherein the first correspondent has a private key and public 
key pair, said method comprising the steps of: 

a) said second correspondent transmitting a short term public key along with an 
identifier to said first correspondent; 

b) said first correspondent combining its private key with the second 
correspondent's short term public key and generating a pair of shared secret 
keys; 

c) the correspondents using the first of said pair of shared secret keys for mutual 
authentication between said first and second correspondent; 

d) the correspondents using the second shared secret key of said pair of shared 
secret keys for establishing a secret session key; 

e) the correspondents using said secret session key to provide confidentiality for 
authenticated communications in the communication system; 

said mutual authentication characterised in that the first correspondent 
authenticates itself to the second correspondent using its private key, and the 
second correspondent authenticates itself to the first correspondent using the first 
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correspondent's public key obtained by said second correspondent from a trusted 
correspondent. 
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